Windows Analysis Report
original (2).eml

• EGA enabled

• Found application associated with file extension: .eml

{
"brand":["docusign"],
"contains_trigger_text":true,
"trigger_text":"Please read the Electronic Record and Signature Disclosure.",
"prominent_button_name":"CONTINUE",
"text_input_field_labels":"unknown",
"pdf_icon_visible":false,
"has_visible_captcha":false,
"has_urgent_text":false,
"has_visible_qrcode":false}

{
"brand":["docusign",
"Nova Ltd."],
"contains_trigger_text":true,
"trigger_text":"Please read the Electronic Record and Signature Disclosure.",
"prominent_button_name":"CONTINUE",
"text_input_field_labels":["Date of Incorporation:",
"Company Registration No.",
"Company VAT No.",
"Company D& B No.",
"Address:",
"City:",
"Country:",
"State/Region:",
"Postal Code:",
"Email:",
"Website:",
"Buyer Contact:",
"Buyer email:"],
"pdf_icon_visible":false,
"has_visible_captcha":false,
"has_urgent_text":false,
"has_visible_qrcode":false}

{
"phishing_score":2,
"brands":"docusign",
"legit_domain":"docusign.com",
"classification":"wellknown",
"reasons":["The brand 'docusign' is well-known and widely recognized.",
"The legitimate domain for DocuSign is 'docusign.com'.",
"The provided URL 'eu.docusign.net' is a subdomain of 'docusign.net',
 which is associated with DocuSign.",
"The URL does not contain any suspicious elements such as misspellings,
 extra characters,
 or unusual domain extensions.",
"The input fields are typical for a business-related form and do not raise immediate red flags."],
"brand_matches":[false],
"url_match":false,
"brand_input":"docusign",
"input_fields":"Date of Incorporation:,
 Company Registration No.,
 Company VAT No.,
 Company D& B No.,
 Address:,
 City:,
 Country:,
 State/Region:,
 Postal Code:,
 Email:,
 Website:,
 Buyer Contact:,
 Buyer email:"}

{
"brand":["Nova Ltd.",
"docusign"],
"contains_trigger_text":true,
"trigger_text":"Please read the Electronic Record and Signature Disclosure.",
"prominent_button_name":"CONTINUE",
"text_input_field_labels":["Company VAT No.",
"Company D&B No.",
"Address",
"City",
"Country",
"State/Region",
"Postal Code",
"Email.",
"Website",
"Buyer Contact",
"Buyer email:"],
"pdf_icon_visible":false,
"has_visible_captcha":false,
"has_urgent_text":false,
"has_visible_qrcode":false}

{
"phishing_score":2,
"brands":"Nova Ltd.",
"legit_domain":"docusign.com",
"classification":"wellknown",
"reasons":["The URL 'eu.docusign.net' uses a subdomain of 'docusign.net',
 which is a legitimate domain associated with DocuSign.",
"DocuSign is a well-known brand in the electronic signature and digital transaction management industry.",
"The URL does not contain any suspicious elements such as misspellings,
 extra characters,
 or unusual domain extensions.",
"The input fields requested are typical for business-related transactions and do not raise immediate red flags."],
"brand_matches":[false],
"url_match":false,
"brand_input":"Nova Ltd.",
"input_fields":"Company VAT No.,
 Company D&B No.,
 Address,
 City,
 Country,
 State/Region,
 Postal Code,
 Email.,
 Website,
 Buyer Contact,
 Buyer email:"}